General
-
Target
GeforceChair0.22.exe
-
Size
231KB
-
MD5
4889fe4c6bc9c53e9e53983517727fa8
-
SHA1
3964bac164a7cdc3a0cddd46f8d3aab5e568b515
-
SHA256
91a8f24b813ec8f33e1222a9996cdfe5c4c0dd56cb922a113a87953878b065a9
-
SHA512
f44368d7406db49db31b13f578e968a053e100d49cd2dbf05dabe3a4f3e9412e8fd2ce6ac0c363f34091f5e7af78769ca0cc1b6020f7e8e9a313813a575c7100
-
SSDEEP
6144:BloZM0rIkd8g+EtXHkv/iD4i/QClL8e1m+cOi:zoZDL+EP8IpHE
Score
10/10
Malware Config
Extracted
Family
umbral
C2
https://discord.com/api/webhooks/1267404483273425028/k8YQeawmuuhmsYpDBs-Q6wJ2H_HeFS9SmCMW95XmRdznY1Eahh4m5w0agoLNs5B1b65I
Signatures
-
Detect Umbral payload 1 IoCs
-
Umbral family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
GeforceChair0.22.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections